|Publication number||US7197556 B1|
|Application number||US 09/693,511|
|Publication date||Mar 27, 2007|
|Filing date||Oct 20, 2000|
|Priority date||Oct 22, 1999|
|Publication number||09693511, 693511, US 7197556 B1, US 7197556B1, US-B1-7197556, US7197556 B1, US7197556B1|
|Inventors||Joel E. Short, Mark F. Logan, Florence C. I. Pagan|
|Original Assignee||Nomadix, Inc.|
|Export Citation||BiBTeX, EndNote, RefMan|
|Patent Citations (38), Non-Patent Citations (1), Referenced by (147), Classifications (6), Legal Events (5)|
|External Links: USPTO, USPTO Assignment, Espacenet|
The present application claims priority from U.S. Provisional Patent Application Ser. No. 60/161,093, filed Oct. 22, 1999, the contents of which are incorporated by reference.
The present invention relates generally to an identification process within a communications network and, more particularly, to a method and apparatus for implementing location-based identification in a communications network.
While desktop computers generally remain a part of the same network for a substantial period of time, laptops, handhelds, personal digital assistants (PDAs), cellphones or other portable computers (collectively “portable computers”) are specifically designed to be transportable. As such, portable computers are connected to different networks at different times depending upon the location of the computer. In a common example in which the portable computer serves as an employee's desktop computer, the portable computer is configured to communicate with their employer's network, i.e., the enterprise network. When the employee travels, however, the portable computer may be connected to different networks that communicate in different manners. In this regard, the employee may connect the portable computer to the network maintained by an airport, a hotel, a cellular telephone network operator or any other locale in order to access the enterprise network, the Internet or some other on-line service. The portable computer is also commonly brought to the employee's residence where it is used to access various networks, such as, the enterprise network, a home network, the Internet and the like. Since these other networks are configured somewhat differently, however, the portable computer must also be reconfigured in order to properly communicate with these other networks. Typically, this configuration is performed by the user each time that the portable computer is connected to a different network. As will be apparent, this repeated reconfiguration of the portable computer is not only quite time consuming, but is also prone to errors. The reconfiguration procedure may even be beyond the capabilities of many users or in violation of their employer's IT policy.
A universal subscriber gateway device has been developed by Nomadix, L.L.C. of Westlake Village, Calif. and is described in detail in U.S. patent application Ser. No. 08/816,174, entitled “Nomadic Router”, filed on Mar. 12, 1997, in the name of inventors Short et. al.; Ser. No. 09/458,602, entitled “Systems and Methods for Authorizing, Authenticating and Accounting Users Having Transparent Computer Access to a Network Using a Gateway Device”, filed on Dec. 8, 1999, in the name of inventors Pagan et. al.; and Ser. No. 09/458,569, entitled “Systems and Methods for Redirecting Users Having Transparent Computer Access to a Network Using a Gateway Device Having Redirection Capability” filed on Dec. 8, 1999, in the name of inventors Short et. al. These applications have been assigned to the same assignee as the present invention and the contents of these applications are expressly incorporated herein by reference as if setforth fully herein.
The gateway device serves as an interface connecting the user/subscriber to a number of networks or other online services. For example, the gateway device can serve as a gateway to the Internet, the enterprise network, or other networks and/or on-line services. In addition to serving as a gateway, the gateway device automatically adapts to the protocols and other parameters of the host, in order that it may communicate with the new network in a manner that is transparent both to the user/subscriber and the new network. Once the gateway device has appropriately adapted to the user's host, the host can appropriately communicate via the new network, such as the network at a hotel, at home, at an airport, or any other location, in order to access other networks, such as the enterprise network, or other online services, such as the internet.
The portable computer user/subscriber, and more specifically the remote or laptop user, benefits from being able to access a myriad of communication networks without having to undergo the time-consuming and all-too-often daunting task of reconfiguring their host in accordance with network specific configurations. From another perspective, the network service provider benefits from avoiding “on-site” visits and/or technical support calls from the user who is unable to properly re-configure the portable computer. In this fashion, the gateway device is capable of providing more efficient network access and network maintenance to the user/subscriber and the network operator.
Gateway devices are typically used to provide network access to the remote portable computer user, such as users in hotels, airports and other locations where the remote portable computer user may reside. Additionally, gateway devices have found wide-spread use in multi-resident dwellings as a means of providing the residents an intranet that networks the residents, broadband Internet access capabilities and the capacity to adapt to the variances of the resident's individual enterprise network needs. With the advent of even smaller portable computing devices, such as handhelds, PDAs, and the like, the locations where these users may reside becomes almost limitless. Someday we can envision wireless communications technology providing the capability to offer networking to all forms of land and air passengers. Gateway devices will likely provide the impetus for granting remote network access to all remote users communicating through wireless links and other foreseeable communication mediums.
In most of the remote user applications and the multi-resident dwelling applications, the gateway administrator (i.e. the network service provider) is not so much concerned with “who” the user/subscriber is, but rather, “where” the user resides or is located. Location based information is imperative to the network service provider who desires to manage and bill subscribers based on where they are physically located rather than who they are or what host they may choose to use. For example, in the hotel scenario, the network service provider is more concerned with knowing that Room 301 has a seven day network subscription than knowing who the individual users are that are residing in Room 301. In this manner, the gateway administrator is able to provide Room 301, as opposed to individual residents in Room 301, with a location identifier. The gateway administrator or network provider relies on this information for ensuring accurate subscriber billing.
Additionally, the gateway administrator may benefit from location-based identification in the area of network management. For instance, by classifying within the network databases according to location the gateway device is able to provide network options to subscribers based upon where they are located. By way of example, if the gateway device has “learned” through location identification that Room 301 is a suite, thereby affording its customers additional service privileges, the gateway device can provide these additional service privileges without the need to query the user/subscriber regarding suite status. The same type of location classification can be beneficial in the multiple-resident dwelling example (i.e. a specially classified building or wing), in the airport example (i.e. a specially designated network port area for first class travelers) or in any other network application that uses a gateway device to provide network access and network adaptation.
The present invention comprises a method and apparatus for implementing location-based identification in a communication network.
In one embodiment of the present invention a method for implementing location-based identification in a communication network comprises establishing a network connection between a host and a network, transmitting data packets from the host through a location-specific connection port and identifying the port at an access concentrator in the form of a port identifier. The port identifier is then communicated to a network device, typically a gateway device, and stored in a database in communication with the network device.
In another embodiment of the method for location-based identification the process of identifying the port at an access concentrator further includes tagging the network packets at the access concentrator with a port identifier that corresponds to a media access control (MAC) address. The access concentrator and the network device will tag and communicate port numbers by assigning VLAN (Virtual Local Area Network) identifiers to the ports.
In a further embodiment of the method for implementing location-based identification the process of identifying the port at an access concentrator further includes transmitting a port identifying query from a network device, typically a gateway device, to an access concentrator and sending a port identifying response from the access concentrator to the network device. The network device and the access concentrator will have corresponding agents configured to send and respond to queries. For example the gateway device and access concentrator may incorporate an SNMP agent or an XML agent to communicate via queries.
In another embodiment of the invention a network apparatus is defined that is capable of communicating with an access concentrator to determine the port identity corresponding to the received MAC address. The gateway device is then able to use the location-based identities to structure billing schemes and manage the overall network that the service provider has established.
The invention is further defined in a method for using location-based identification in a communications system. A network device, typically a gateway device accesses a database to determine the identification status of connection ports within a communications network. The identification status of the connection ports are then used to execute a network system application such as billing, authentication or any other network management application.
The present invention now will be described more fully hereinafter with reference to the accompanying drawings, in which preferred embodiments of the invention are shown. This invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the invention to those skilled in the art. Like numbers refer to like elements throughout.
Referring now to
Although the gateway device can be physically embodied in many different fashions, the gateway device typically includes a controller and a memory device in which commands are stored that define the operational characteristics of the gateway device. Alternatively, the gateway device can be embedded within another network device, such as an access concentrator or a router, or the commands that define the functioning of the gateway device can be stored on a PCMCIA card that can be executed by one or more hosts in order to automatically reconfigure the host(s) to communicate with a different network.
The network system 10 also typically includes an access concentrator 16 positioned between the hosts 14 and the gateway device 12 for multiplexing the signals received from the plurality of communications onto a link to the gateway device. Depending upon the medium by which the hosts are connected to the access concentrator, the access concentrator can be configured in different manners. For example, the access concentrator can be a digital subscriber line access module (DSLAM) for signals transmitted via regular telephone lines, a cable modem termination system (CMTS) for signals transmitted via coaxial cables, a wireless access point (WAP) for signals transmitted via a wireless network, a switch or the like. As also shown in
The gateway device 12 is specifically designed to adapt to the configuration of each of the hosts 14 that log onto the network system 10 in a manner that is transparent to the subscriber and the network. In the typical network system that employs dynamic host configuration protocol (DHCP) service, an IP address is assigned to the host that is logging onto the network through communication with the gateway device. The DHCP service can be provided by an external DHCP server 24 or it can be provided by an internal DHCP service located within the gateway device. Upon opening their web browser or otherwise attempting to access an on-line service, the gateway device will direct the subscriber to enter some form of an identifier such as their ID and password. In an alternate embodiment of the device, it is anticipated that the gateway device will be able to automatically detect this information upon connection of the host to the network or any attempt to log in. The gateway device then determines if the subscriber is entitled to access the communication system, the level of access and/or the type of services to which the subscriber is entitled according to an Authentication, Authorization and Accounting (AAA) procedure that is described by U.S. patent application Ser. Nos. 08/816,174, 09/458,602 and 09/458,569, previously incorporated by reference. An AAA service, which is a database of subscriber records, may be an AAA server remote to the gateway device or the AAA service may comprise a database incorporated into the physical embodiment housing the gateway device.
Assuming that the subscriber has been authenticated and has authorization, the gateway device typically presents subscribers with a home page or control panel that identifies, among other things, the online services or other communication networks that are accessible via the gateway device. In addition, the home page presented by the gateway device can provide information regarding the current parameters or settings that will govern the access provided to the particular subscriber. As such, the gateway administrator can readily alter the parameters or other settings in order to tailor the service according to their particular application. Typically, changes in the parameters or other settings that will potentially utilize additional resources of the network system will come at a cost, such that the gateway administrator will charge the subscriber a higher rate for their service. For example, a subscriber may elect to increase the transfer rate at which signals are transmitted across the communication network and pay a correspondingly higher price for the expedited service.
The home page also permits the subscriber to select the network 20 or other online services 22 that the subscriber wishes to access. For example, the subscriber can access the enterprise network on which the host is typically resident. Alternatively, the subscriber can access the internet or other on-line services. Once the subscriber elects to access a network or other online service, the gateway device establishes appropriate links via one or more routers 18 to the desired network or online service.
Thereafter, the subscriber can communicate freely with the desired network 20 or other online service 22. In order to support this communication, the gateway device 12 generally performs a packet translation function that is transparent to the user/subscriber and the network. In this regard, for outbound traffic from the host 12 to the communication network or other on-line service, the gateway device changes attributes within the packet coming from the user/subscriber, such as the source address, checksum, and application specific parameters, to meet the criteria of the network to which the user/subscriber has accessed. In addition, the outgoing packet includes an attribute that will direct all incoming packets from the accessed network to be routed through the gateway device. In contrast, the inbound traffic from the accessed network or other online service that is routed through the gateway device, undergoes a translation function at the gateway device so that the packets are properly formatted for the user/subscriber's host. In this manner, the packet translation process that takes place at the gateway device is transparent to the host, which appears to send and receive data directly from the accessed communication network. Additional information regarding the translation function is provided by U.S. patent application Ser. No. 08/816,714. By implementing the gateway device as an interface between the user/subscriber and the communication network or other online service, however, the user/subscriber will eliminate the need to re-configure their host 12 upon accessing subsequent networks.
In one embodiment of the present invention, the gateway device implements location-based identification. In accordance with the present invention location-based identification may also be embedded within another network device, such as an access concentrator or a router, or the commands that define location-based identification can be stored on a PCMCIA card that can be executed by one or more hosts in order to identify the ports from which the hosts access the network system. Location based identification allows the network system to grant network access to a specific location (e.g. a hotel room, a specific apartment address, etc.) rather than a specific user or host residing at the location. Basing identification on location, as opposed to user or host, allows the gateway administrator (i.e. network service provider) to manage the network system according to user locations and to provide for a billing scheme according to user locations. For an example of a network management system that utilizes location based management in a gateway device environment see United States Patent Application No. 60/160,973 entitled “Systems and Methods for Enabling Network Gateway Devices to Communicate with Management Systems to Facilitate Subscriber Management” filed on Oct. 20, 2000 in the name of inventors Short et. al. and assigned to the same assignee as the present invention. That application is herein expressly incorporated by reference as if setforth fully herein.
In one embodiment of the present invention the gateway device includes a processor that communicates with an access concentrator to determine connection ports of host-generated data packets. Once the connection ports are determined they are stored within a database, such as a connection table, that is in communication with the gateway device processor. In a typical gateway device the processor will employ the use of VLAN protocol as the communication link between the gateway device and the access concentrator. While VLAN is by definition, Virtual Local Area Network, in the context we are concerned with VLAN is the IEEE-standard protocol 802.1 Q used to implement VLAN. VLAN technology is well known in the art and has been used to create virtual networks by employing VLAN processors between network interfaces to logically bridge networks together. VLAN works on the concept of tracking ports by tagging the IP packet with an identifier. By using VLAN technology, the gateway device can provision subscriber access to the network on a localized port basis. For example, in a multi-resident dwelling environment, a network service provider may want to provision Internet access to individual units or apartments; each unit is assigned a VLAN ID (a port-location tag). In this example, a resident within the unit can choose to subscribe to the service and the gateway device will then allow Internet access from the resident's unit, regardless of which host or who the user is within the unit. Typically, hosts are granted network access via a MAC (Media Access Control) address that connects the device to a shared network medium. The use of VLAN tagging overrides the MAC address identification process.
VLAN ports can be “tagged” at any level, for example, a specific room in a hotel or an apartment building can be assigned a tag, or a floor within a building, a wing within a building or the building itself may be assigned an individual tag. Alternatively, multiple ports may be tagged to a single room. The gateway device uses a port-location authorization table to manage the assigned ports and ensure accurate billing for services used by a particular port.
Once the host establishes connections it begins sending out standard IP (Internet Protocol) packets. An access concentrator 56 initially receives the IP packets. The access concentrator serves as a switch that multiplexes signals received from numerous ports and sends them out one output port. Depending upon the medium by which the hosts are networked to the access concentrator, the access concentrator can be configured in different manners. For example, the access concentrator can be a digital subscriber line access module (DSLAM) for signals transmitted via regular telephone lines, a cable modem termination system (CMTS) for signals transmitted via coaxial cables, a wireless access point (WAP) for signals transmitted via a wireless network, a switch or the like. For VLAN tagging to be implemented the access concentrator must be able to support VLAN technology. If the access concentrator does not support VLAN tagging or a similar tagging means then location-based identification may be implemented by the alternative SNMP (Simple Network Management Protocol) query embodiment of the present invention that is detailed in later discussion herein. Access concentrators are well known by those of ordinary skill in the art and most DSLAMs or other access concentrators will support VLAN technology.
In the VLAN tagging embodiment of the present invention once the access concentrator receives the IP packet it knows what host sent it (from the MAC address header) but it does not know where the host is located. The access concentrator through the use of a VLAN processor has the capability to “know” from what port each packet arrived. It then re-configures the packet by adding a header, typically between the Ethernet and IP portions of the packet according to the 802.1 Q IEEE VLAN protocol, identifying the port number and the host. These packets are then forwarded via the single output to the gateway device 58. The gateway device removes the port information and records the data in a database, such as a connection table. A typical connection table maps a port identifier to a MAC address for all incoming packets routed from the access concentrator. The dynamic nature of the table would allow for the subscriber to change locations and access the network system through an alternate port that has been identified and authorized for use. Once the port number is recorded the VLAN portion is stripped from the packet header and the packet is forwarded on to a router 60 and subsequently the Internet 62 or another network in the system. The VLAN tag may be placed back on a packet that is being communicated from the network to the host so that the access concentrator knows where the packet is to be sent. Additionally, tagging packets coming from the network back to the subscriber provides the gateway device to be interoperable with most access concentrators that are in VLAN tagging mode. This allows for the access concentrators that comprise a composite communication network to communicate in “trunked” line fashion.
It should be noted that while other devices in the network system may communicate in VLAN protocol, in this embodiment the only two devices that require VLAN protocol communication are the access concentrator and the gateway device. The host devices are generally incapable of communicating in VLAN and the downstream network components (routers, switches, bridges, etc.) are inconsequential in this regard.
In this embodiment the access concentrator is a DSLAM that is capable of communicating in VLAN (IEEE 802.1 Q) protocol. The access concentrator determines the port from which the packet was sent and assigns an appropriate VLAN identification number to the packet based upon the port from which it was sent. As shown in
It should be noted that the gateway device or any other network device implementing location-based identification will require configuration upon initial installation to accommodate location-based identification. If VLAN tagging is to be the basis for location-based identification the gateway device or similar network device must be configured to allow for this communication to occur. A gateway administrator will need to configure the gateway so that VLAN ID's are assigned to individual entities or ports (i.e. room numbers, apartment units, etc.). Port location assignments can be added, updated or deleted according to gateway administrator commands. Adding a port-assignment to the gateway device database may involve assigning a port number, assigning a location to the port number and a conditional state for this port-location. Conditional states may be associated with billing schemes. For instance port-locations may be assigned a “no charge” state, a “charge for use” state, a “blocked” state or any other state may be assigned.
In another embodiment of the present invention the location-based identification is implemented by the processor within a gateway device using a query agent capable of requesting identification data related to the connection port of host-generated data packets. A typical gateway processor will implement SNMP (Simple Network Management Protocol) querying or a similar querying agent may be implemented. The SNMP query embodiment is generally used if the access concentrator does not support the VLAN protocol.
In this application, since the access concentrator does not implement VLAN tagging, the packets communicated between the access concentrator and the gateway device 124 are standard IP packets 126. The IP packets that are received by the gateway device are devoid of any information related to location (i.e. ports). As shown in
It should be noted that in the SNMP query embodiment the gateway device and the access concentrator must be SNMP compatible. Both the gateway device and the access concentrator must be configured with the SNMP agent to receive, send and act upon SNMP queries. If other querying agents are used to implement location-based identification then both the gateway device or a similar network device and the access concentrator must be configured with the chosen querying agent.
In accordance with an embodiment of the present invention, a method for implementing location-based identification in a communication network is shown in the flow chart diagram of
In accordance with another embodiment of the present invention, a method for location-based identification implementing VLAN tagging in a communication network is shown in the flow diagram of
At step 230, the access concentrator tags the network data packet with a port identifier that corresponds to the media access control (MAC) address. The tagging of the network data packet is typically performed using VLAN technology. Each port in the network service provider's entity is configured as a virtual LAN and therefore, each port has its own VLAN identifier. At step 240, the tagged data packet is received at a network device, typically a gateway device, where the port identifying information is removed from the packet header. At step 250 the port identifier is incorporated into a database that is in communication with the network device. Once the location-based data, in this instance the port identifier, is incorporated into the database it can be called upon for billing scheme purposes, authentication purposes or for any other use in overall network management systems.
In accordance with another embodiment of the present invention, a method for location-based identification implementing querying in a communication network is shown in the flow chart diagram of
The network device is typically configured with an agent that is capable of generating queries to other network devices. For example the network interface device may be configured with a SNMP agent that is capable of generating SNMP queries or another similar agent, such as XML, may be used. At step 330 the network device sends a port identifying query to an access concentrator, in response to receiving the network data packets. The access concentrator may comprise a digital subscriber line access module (DSLAM) for signals transmitted via regular telephone lines, a cable modem termination system (CMTS) for signals transmitted via coaxial cables, a wireless access point (WAP) for signals transmitted via a wireless network, a switch or the like. Characteristically, the access concentrator will have an agent capable of responding to the queries sent by the network interface device. For example, the access concentrator may be configured with a SNMP agent that is capable of generating SNMP responses, or another similar agent, such as XML, corresponding to the agent used in the network interface device may also be used. Additionally, the access concentrator is configured so as to track port identity versus MAC address of incoming packet traffic.
At step 340, the access concentrator sends a port identifying response back to the network device and at step 350 the port identifier is incorporated into a data base that is in communication with the network device. Once the location-based data, in this instance the port identifier, is incorporated into the database it can be called upon for billing schemes, authorization or for use in any other overall network management system.
The method and apparatus of the present invention provide for location-based identification of subscribers as opposed identifying subscribers based on the user or the device. In this manner the network system can administer billing schemes and network management (i.e. quality of service, billing maintenance, authorization, etc.) based upon the physical entity; the hotel room, the apartment unit, the airport kiosk, etc. where the user is located. This provides more options to the network service provider in terms of billing and network management.
Many modifications and other embodiments of the invention will come to mind to one skilled in the art to which this invention pertains having the benefit of the teachings presented in the foregoing descriptions and the associated drawings. Therefore, it is to be understood that the invention is not to be limited to the specific embodiments disclosed and that modifications and other embodiments are intended to be included within the scope of the appended claims. Although specific terms are employed herein, they are used in a generic and descriptive sense only and not for purposes of limiting the scope of the present invention in any way.
|Cited Patent||Filing date||Publication date||Applicant||Title|
|US4691346||Mar 6, 1986||Sep 1, 1987||American Telephone And Telegraph Company||PBX integrity arrangement for maintaining the functional integrity of PBX communication devices and associated facilities|
|US5226120 *||May 21, 1990||Jul 6, 1993||Synoptics Communications, Inc.||Apparatus and method of monitoring the status of a local area network|
|US5235595 *||Jan 6, 1989||Aug 10, 1993||Fischer & Porter Company||Packet switching|
|US5319648 *||Jan 13, 1989||Jun 7, 1994||International Business Machines Corporation||Control flow reduction in selective repeat protocols|
|US5432789 *||May 3, 1994||Jul 11, 1995||Synoptics Communications, Inc.||Use of a single central transmit and receive mechanism for automatic topology determination of multiple networks|
|US5557677 *||Feb 17, 1994||Sep 17, 1996||Info Development & Patent Ab||Method and arrangement for communication of information|
|US5651058||Apr 26, 1993||Jul 22, 1997||Hackett-Jones; Frank Charles||Hotel interactive communication apparatus|
|US5740171 *||Mar 28, 1996||Apr 14, 1998||Cisco Systems, Inc.||Address translation mechanism for a high-performance network switch|
|US5742604 *||Mar 28, 1996||Apr 21, 1998||Cisco Systems, Inc.||Interswitch link mechanism for connecting high-performance network switches|
|US5825772 *||Apr 2, 1996||Oct 20, 1998||Cabletron Systems, Inc.||Distributed connection-oriented services for switched communications networks|
|US5889470 *||Mar 7, 1997||Mar 30, 1999||Paradyne Corporation||Digital subscriber line access device management information base|
|US5946308||Oct 30, 1997||Aug 31, 1999||Cabletron Systems, Inc.||Method for establishing restricted broadcast groups in a switched network|
|US6041057 *||Mar 24, 1997||Mar 21, 2000||Xylan Corporation||Self-configuring ATM network|
|US6058429 *||Dec 8, 1995||May 2, 2000||Nortel Networks Corporation||Method and apparatus for forwarding traffic between locality attached networks using level 3 addressing information|
|US6061334 *||Jan 6, 1997||May 9, 2000||Lucent Technologies Networks Ltd||Apparatus and method for assigning virtual LANs to a switched network|
|US6075776 *||Jun 6, 1997||Jun 13, 2000||Nippon Telegraph And Telephone Corporation||VLAN control system and method|
|US6147995 *||Aug 31, 1999||Nov 14, 2000||Cabletron Systems, Inc.||Method for establishing restricted broadcast groups in a switched network|
|US6167445 *||Oct 26, 1998||Dec 26, 2000||Cisco Technology, Inc.||Method and apparatus for defining and implementing high-level quality of service policies in computer networks|
|US6175867 *||Mar 23, 1998||Jan 16, 2001||Mci World Com, Inc.||System and method for managing networks addressed via common network addresses|
|US6181699 *||Jul 1, 1998||Jan 30, 2001||National Semiconductor Corporation||Apparatus and method of assigning VLAN tags|
|US6208977 *||Sep 10, 1999||Mar 27, 2001||Apogee Networks, Inc.||Accounting and billing based on network use|
|US6286038 *||Aug 3, 1998||Sep 4, 2001||Nortel Networks Limited||Method and apparatus for remotely configuring a network device|
|US6331983 *||May 6, 1997||Dec 18, 2001||Enterasys Networks, Inc.||Multicast switching|
|US6339595 *||Dec 23, 1997||Jan 15, 2002||Cisco Technology, Inc.||Peer-model support for virtual private networks with potentially overlapping addresses|
|US6370142 *||Apr 2, 1997||Apr 9, 2002||Nortel Networks Limited||Method and apparatus for performing per-port IP multicast pruning|
|US6424659 *||Jul 17, 1998||Jul 23, 2002||Network Equipment Technologies, Inc.||Multi-layer switching apparatus and method|
|US6430621 *||Dec 29, 1998||Aug 6, 2002||Nortel Networks Limited||System using different tag protocol identifiers to distinguish between multiple virtual local area networks|
|US6460084 *||Apr 9, 1999||Oct 1, 2002||Cisco Technology, Inc.||Forced network portal|
|US6463478 *||May 21, 1999||Oct 8, 2002||Advanced Micro Devices, Inc.||Method and apparatus for identifying runt data frames received by a network switch|
|US6470385 *||Aug 20, 1998||Oct 22, 2002||Fujitsu Limited||Network monitoring system, monitored controller, and monitoring controller|
|US6526052 *||Dec 23, 1998||Feb 25, 2003||Enterasys Networks, Inc.||Virtual local area networks having rules of precedence|
|US6526056 *||Dec 21, 1998||Feb 25, 2003||Cisco Technology, Inc.||Virtual private network employing tag-implemented egress-channel selection|
|US6539422 *||May 3, 1999||Mar 25, 2003||Intermec Ip Corp.||Automatic data collection device having a network communications capability|
|US6549516 *||Jul 2, 1999||Apr 15, 2003||Cisco Technology, Inc.||Sending instructions from a service manager to forwarding agents on a need to know basis|
|US6597693 *||May 21, 1999||Jul 22, 2003||Advanced Micro Devices, Inc.||Common scalable queuing and dequeuing architecture and method relative to network switch data rate|
|US6728920 *||May 24, 1999||Apr 27, 2004||Adaptive Broadband Corporation||Method for correcting errors in transfer of information|
|US6775290 *||May 24, 1999||Aug 10, 2004||Advanced Micro Devices, Inc.||Multiport network switch supporting multiple VLANs per port|
|WO1998036587A2||Feb 6, 1998||Aug 20, 1998||Advanced Micro Devices, Inc.||Queuing structure and method for prioritization of frames in a network switch|
|1||*||Denning et al., Location-Based Authentication: Grounding Cyberspace for Better Security, copy right 1996, Elsevier Science Ltd., pp. 1-6.|
|Citing Patent||Filing date||Publication date||Applicant||Title|
|US7502620 *||Mar 1, 2006||Mar 10, 2009||Shyhook Wireless, Inc.||Encoding and compression of a location beacon database|
|US7568107||Aug 20, 2003||Jul 28, 2009||Extreme Networks, Inc.||Method and system for auto discovery of authenticator for network login|
|US7633956 *||Feb 6, 2006||Dec 15, 2009||Cisco Technology, Inc.||System and method for providing support for multipoint L2VPN services in devices without local bridging|
|US7639696 *||Sep 7, 2004||Dec 29, 2009||Huawei Technologies Co., Ltd.||Method for transferring user position identifier|
|US7647422||Aug 16, 2002||Jan 12, 2010||Enterasys Networks, Inc.||VPN failure recovery|
|US7668123 *||Jun 28, 2002||Feb 23, 2010||Nortel Networks Limited||Network access device location|
|US7698432||Oct 15, 2009||Apr 13, 2010||Nomadix, Inc.||Systems and methods for dynamic bandwidth management on a per subscriber basis in a communications network|
|US7706369||Nov 12, 2007||Apr 27, 2010||Enterasys Networks, Inc.||Location discovery in a data network|
|US7739383||Oct 20, 2000||Jun 15, 2010||Nomadix, Inc.||Systems and methods for dynamic bandwidth management on a per subscriber basis in a communications network|
|US7739402||Feb 28, 2003||Jun 15, 2010||Enterasys Networks, Inc.||Locating devices in a data network|
|US7778203||Feb 1, 2008||Aug 17, 2010||Microsoft Corporation||On-demand MAC address lookup|
|US7895463||Apr 11, 2008||Feb 22, 2011||Cisco Technology, Inc.||Redundant application network appliances using a low latency lossless interconnect link|
|US7913529||Apr 11, 2008||Mar 29, 2011||Cisco Technology, Inc.||Centralized TCP termination with multi-service chaining|
|US7921686||Apr 11, 2008||Apr 12, 2011||Cisco Technology, Inc.||Highly scalable architecture for application network appliances|
|US7945945||Aug 8, 2005||May 17, 2011||Enterasys Networks, Inc.||System and method for address block enhanced dynamic network policy management|
|US7953857||Apr 30, 2010||May 31, 2011||Nomadix, Inc.||Systems and methods for dynamic data transfer management on a per subscriber basis in a communications network|
|US7962645 *||Jan 31, 2005||Jun 14, 2011||International Business Machines Corporation||Apparatus, system, and method for automatically mapping a tape library system|
|US8031657||Aug 13, 2008||Oct 4, 2011||Skyhook Wireless, Inc.||Server for updating location beacon database|
|US8086232||Jun 28, 2006||Dec 27, 2011||Enterasys Networks, Inc.||Time synchronized wireless method and operations|
|US8094560||May 19, 2008||Jan 10, 2012||Cisco Technology, Inc.||Multi-stage multi-core processing of network packets|
|US8140094||Feb 13, 2009||Mar 20, 2012||Skyhook Wireless, Inc.||Continuous data optimization of new access points in positioning systems|
|US8156246||Sep 26, 2011||Apr 10, 2012||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8161167||Apr 11, 2008||Apr 17, 2012||Cisco Technology, Inc.||Highly scalable application layer service appliances|
|US8165575 *||May 19, 2011||Apr 24, 2012||Research In Motion Limited||Wireless router system and method|
|US8180901||Apr 11, 2008||May 15, 2012||Cisco Technology, Inc.||Layers 4-7 service gateway for converged datacenter fabric|
|US8190708||Oct 20, 2000||May 29, 2012||Nomadix, Inc.||Gateway device having an XML interface and associated method|
|US8228928||Nov 17, 2009||Jul 24, 2012||Cisco Technology, Inc.||System and method for providing support for multipoint L2VPN services in devices without local bridging|
|US8244272||Feb 22, 2006||Aug 14, 2012||Skyhook Wireless, Inc.||Continuous data optimization of moved access points in positioning systems|
|US8266269||Dec 19, 2011||Sep 11, 2012||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8295306||Apr 11, 2008||Oct 23, 2012||Cisco Technologies, Inc.||Layer-4 transparent secure transport protocol for end-to-end application protection|
|US8325733||Sep 7, 2010||Dec 4, 2012||Exafer Ltd||Method and system for layer 2 manipulator and forwarder|
|US8364806||Aug 3, 2012||Jan 29, 2013||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8369264||Dec 28, 2007||Feb 5, 2013||Skyhook Wireless, Inc.||Method and system for selecting and providing a relevant subset of Wi-Fi location information to a mobile client device so the client device may estimate its position with efficient utilization of resources|
|US8370477||Aug 3, 2012||Feb 5, 2013||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8443069||Mar 24, 2011||May 14, 2013||Cisco Technology, Inc.||Highly scalable architecture for application network appliances|
|US8478297||Aug 13, 2012||Jul 2, 2013||Skyhook Wireless, Inc.||Continuous data optimization of moved access points in positioning systems|
|US8483694||Sep 9, 2011||Jul 9, 2013||Research In Motion Limited||Wireless router system and method|
|US8510804 *||Mar 25, 2008||Aug 13, 2013||Sprint Communications Company L.P.||Authorizing application use by a mobile device|
|US8516083||May 2, 2012||Aug 20, 2013||Nomadix, Inc.||Systems and methods of communicating using XML|
|US8538457||Oct 23, 2012||Sep 17, 2013||Skyhook Wireless, Inc.||Continuous data optimization of moved access points in positioning systems|
|US8559974||Jun 9, 2011||Oct 15, 2013||Skyhook Wireless, Inc.||Methods of and systems for measuring beacon stability of wireless access points|
|US8566912||May 23, 2012||Oct 22, 2013||Nomadix, Inc.||Zone migration in network access|
|US8606294||Oct 4, 2011||Dec 10, 2013||Skyhook Wireless, Inc.||Method of and system for estimating temporal demographics of mobile users|
|US8606917||Oct 24, 2012||Dec 10, 2013||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8613053||Oct 11, 2011||Dec 17, 2013||Nomadix, Inc.||System and method for authorizing a portable communication device|
|US8621573||Apr 11, 2008||Dec 31, 2013||Cisco Technology, Inc.||Highly scalable application network appliances with virtualized services|
|US8626922||Apr 26, 2011||Jan 7, 2014||Nomadix, Inc.||Systems and methods for dynamic data transfer management on a per subscriber basis in a communications network|
|US8630657||Jun 9, 2011||Jan 14, 2014||Skyhook Wireless, Inc.||Systems for and methods of determining likelihood of reference point identity duplication in a positioning system|
|US8630664||Oct 19, 2010||Jan 14, 2014||Skyhook Wireless, Inc.||Access point database|
|US8667556||May 19, 2008||Mar 4, 2014||Cisco Technology, Inc.||Method and apparatus for building and managing policies|
|US8677453||May 19, 2008||Mar 18, 2014||Cisco Technology, Inc.||Highly parallel evaluation of XACML policies|
|US8693996||Feb 16, 2012||Apr 8, 2014||Blackberry Limited||Wireless router system and method|
|US8700053||Jun 9, 2011||Apr 15, 2014||Skyhook Wireless, Inc.||Systems for and methods of determining likelihood of relocation of reference points in a positioning system|
|US8713641||Dec 8, 1999||Apr 29, 2014||Nomadix, Inc.||Systems and methods for authorizing, authenticating and accounting users having transparent computer access to a network using a gateway device|
|US8725888||Oct 21, 2013||May 13, 2014||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8725899||Oct 21, 2013||May 13, 2014||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8751647 *||Jun 30, 2001||Jun 10, 2014||Extreme Networks||Method and apparatus for network login authorization|
|US8788690||Dec 2, 2013||Jul 22, 2014||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US8836601||Jan 31, 2014||Sep 16, 2014||Ubiquiti Networks, Inc.||Dual receiver/transmitter radio devices with choke|
|US8837363||Sep 6, 2011||Sep 16, 2014||Skyhook Wireless, Inc.||Server for updating location beacon database|
|US8855730||Jan 31, 2014||Oct 7, 2014||Ubiquiti Networks, Inc.||Transmission and reception of high-speed wireless communication using a stacked array antenna|
|US8965412||Mar 8, 2013||Feb 24, 2015||Skyhook Wireless, Inc.||Location-based services that choose location algorithms based on number of detected access points within range of user device|
|US8971335||Jun 30, 2010||Mar 3, 2015||Exafer Ltd||System and method for creating a transitive optimized flow path|
|US8971915||Jun 9, 2011||Mar 3, 2015||Skyhook Wireless, Inc.||Systems for and methods of determining likelihood of mobility of reference points in a positioning system|
|US8971923||Oct 11, 2013||Mar 3, 2015||Skyhook Wireless, Inc.||Methods of and systems for measuring beacon stability of wireless access points|
|US8972589||Feb 28, 2003||Mar 3, 2015||Enterasys Networks, Inc.||Location-based access control in a data network|
|US8983493||Feb 4, 2013||Mar 17, 2015||Skyhook Wireless, Inc.||Method and system for selecting and providing a relevant subset of Wi-Fi location information to a mobile client device so the client device may estimate its position with efficient utilization of resources|
|US9009259 *||May 2, 2012||Apr 14, 2015||Guest Tek Interactive Entertainment Ltd.||Automatic client device location detection within hospitality establishment|
|US9014715||Jun 9, 2011||Apr 21, 2015||Skyhook Wireless, Inc.||Systems for and methods of determining likelihood of atypical transmission characteristics of reference points in a positioning system|
|US9025599||Jun 9, 2014||May 5, 2015||Guest Tek Interactive Entertainment Ltd.||Methods and apparatus for providing high speed connectivity to a hotel environment|
|US9031580||Nov 7, 2013||May 12, 2015||Skyhook Wireless, Inc.||Method of and system for estimating temporal demographics of mobile users|
|US9037162||Mar 20, 2012||May 19, 2015||Skyhook Wireless, Inc.||Continuous data optimization of new access points in positioning systems|
|US9100371||Apr 10, 2013||Aug 4, 2015||Cisco Technology, Inc.||Highly scalable architecture for application network appliances|
|US9103900||Nov 19, 2012||Aug 11, 2015||Skyhook Wireless, Inc.||System and method of gathering WLAN packet samples to improve position estimates of WLAN positioning device|
|US9118578||Jan 17, 2012||Aug 25, 2015||Nomadix, Inc.||Systems and methods for group bandwidth management in a communication systems network|
|US9141773||Oct 18, 2013||Sep 22, 2015||Nomadix, Inc.||Zone migration in network access|
|US9160672||Mar 31, 2015||Oct 13, 2015||Nomadix, Inc.||Systems and methods for controlling user perceived connection speed|
|US9160674||Jan 3, 2014||Oct 13, 2015||Nomadix, Inc.||Systems and methods for dynamic data transfer management on a per subscriber basis in a communications network|
|US9172605||Mar 5, 2015||Oct 27, 2015||Ubiquiti Networks, Inc.||Cloud device identification and authentication|
|US9191037||Oct 10, 2014||Nov 17, 2015||Ubiquiti Networks, Inc.||Wireless radio system optimization by persistent spectrum analysis|
|US9258372||Apr 6, 2012||Feb 9, 2016||Blackberry Limited||Wireless router system and method|
|US9279877||May 13, 2013||Mar 8, 2016||Skyhook Wireless, Inc.||Technique for using cached information with a WLAN positioning system to obtain an estimate of a position of a mobile device|
|US9293817||Jan 31, 2014||Mar 22, 2016||Ubiquiti Networks, Inc.||Stacked array antennas for high-speed wireless communication|
|US9298897||May 24, 2013||Mar 29, 2016||Skyhook Wireless, Inc.||Method of and systems for privacy preserving mobile demographic measurement of individuals, groups and locations over time and space|
|US9325516||Mar 5, 2015||Apr 26, 2016||Ubiquiti Networks, Inc.||Power receptacle wireless access point devices for networked living and work spaces|
|US9325590||Apr 6, 2015||Apr 26, 2016||Guest Tek Interactive Entertainment Ltd.||Automatic switch-mapping and client device location detection|
|US9368870||Mar 16, 2015||Jun 14, 2016||Ubiquiti Networks, Inc.||Methods of operating an access point using a plurality of directional beams|
|US9369884||Aug 11, 2014||Jun 14, 2016||Skyhook Wireless, Inc.||Techniques for computing location of a mobile device based on observed Wi-Fi access points|
|US9373885||Jan 31, 2014||Jun 21, 2016||Ubiquiti Networks, Inc.||Radio system for high-speed wireless communication|
|US9397820||Jan 31, 2014||Jul 19, 2016||Ubiquiti Networks, Inc.||Agile duplexing wireless radio devices|
|US9398558||Sep 13, 2013||Jul 19, 2016||Skyhook Wireless, Inc.||Continuous data optimization of moved access points in positioning systems|
|US9467807||May 8, 2015||Oct 11, 2016||Skyhook Wireless, Inc.||Estimating demographics associated with a selected geographic area|
|US9490533||Sep 15, 2014||Nov 8, 2016||Ubiquiti Networks, Inc.||Dual receiver/transmitter radio devices with choke|
|US9491201||Jun 22, 2015||Nov 8, 2016||Cisco Technology, Inc.||Highly scalable architecture for application network appliances|
|US9491234 *||Jul 14, 2014||Nov 8, 2016||Cisco Technology, Inc.||Deterministic session load-balancing and redundancy of access servers in a computer network|
|US9496620||Mar 15, 2013||Nov 15, 2016||Ubiquiti Networks, Inc.||Radio system for long-range high-speed wireless communication|
|US9503419||May 1, 2015||Nov 22, 2016||Guest Tek Interactive Entertainment Ltd.||Methods and apparatus for providing high speed connectivity to a hotel environment|
|US9521512||Mar 2, 2015||Dec 13, 2016||Skyhook Wireless, Inc.||Determining a designated wireless device lacks a fixed geographic location and using the determination to improve location estimates|
|US9531067||Jan 31, 2014||Dec 27, 2016||Ubiquiti Networks, Inc.||Adjustable-tilt housing with flattened dome shape, array antenna, and bracket mount|
|US9543635||Jan 31, 2014||Jan 10, 2017||Ubiquiti Networks, Inc.||Operation of radio devices for long-range high-speed wireless communication|
|US9548935||Jul 18, 2014||Jan 17, 2017||Nomadix, Inc.||Systems and methods for providing content and services on a network system|
|US9554247||Jun 13, 2016||Jan 24, 2017||Skyhook Wireless, Inc.||Techniques for computing location of a mobile device based on observed Wi-Fi access points|
|US9634373||Sep 23, 2015||Apr 25, 2017||Ubiquiti Networks, Inc.||Antenna isolation shrouds and reflectors|
|US20020022483 *||Jan 22, 2001||Feb 21, 2002||Wayport, Inc.||Distributed network communication system which allows multiple wireless service providers to share a common network infrastructure|
|US20030088698 *||Aug 16, 2002||May 8, 2003||Inderpreet Singh||VPN failure recovery|
|US20050195756 *||Feb 25, 2005||Sep 8, 2005||Frattura David E.||Status announcement system and method|
|US20050195949 *||Feb 25, 2005||Sep 8, 2005||Frattura David E.||Status transmission system and method|
|US20060037075 *||Feb 25, 2005||Feb 16, 2006||Frattura David E||Dynamic network detection system and method|
|US20060168341 *||Feb 27, 2006||Jul 27, 2006||Stefan Keller-Tuberg||Facilitating IP-based multicasting control connections|
|US20060174036 *||Jan 31, 2005||Aug 3, 2006||Dain Joseph W||Apparatus, system, and method for automatically mapping a tape library system|
|US20060195889 *||Feb 28, 2005||Aug 31, 2006||Pfleging Gerald W||Method for configuring and controlling access of a computing device based on location|
|US20060200843 *||Mar 1, 2006||Sep 7, 2006||Skyhook Wireless, Inc.||Encoding and compression of a location beacon database|
|US20060247338 *||May 2, 2005||Nov 2, 2006||General Electric Company||Poly(arylene ether) compositions with improved ultraviolet light stability, and related articles|
|US20060277187 *||Aug 15, 2006||Dec 7, 2006||Roese John J||Location based data|
|US20070004428 *||Feb 22, 2006||Jan 4, 2007||Skyhook Wireless, Inc.||Continuous data optimization of moved access points in positioning systems|
|US20070078974 *||Jun 28, 2006||Apr 5, 2007||Krishnan Venkatraman G||Time synchronized wireless method and operations|
|US20070110028 *||Sep 7, 2004||May 17, 2007||Haijun Wu||Method for transferring user position identifier|
|US20080192696 *||Jul 25, 2005||Aug 14, 2008||Joachim Sachs||Handover Optimisation in a Wlan Radio Access Network|
|US20090059957 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Layer-4 transparent secure transport protocol for end-to-end application protection|
|US20090063625 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Highly scalable application layer service appliances|
|US20090063665 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Highly scalable architecture for application network appliances|
|US20090063688 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Centralized tcp termination with multi-service chaining|
|US20090063701 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Layers 4-7 service gateway for converged datacenter fabric|
|US20090063747 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Application network appliances with inter-module communications using a universal serial bus|
|US20090063893 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Redundant application network appliances using a low latency lossless interconnect link|
|US20090064287 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Application protection architecture with triangulated authorization|
|US20090064288 *||Apr 11, 2008||Mar 5, 2009||Rohati Systems, Inc.||Highly scalable application network appliances with virtualized services|
|US20090075672 *||Aug 13, 2008||Mar 19, 2009||Skyhook Wireless, Inc.||Server for updating location beacon database|
|US20090196290 *||Feb 1, 2008||Aug 6, 2009||Microsoft Corporation||On-demand mac address lookup|
|US20090232028 *||Mar 11, 2008||Sep 17, 2009||Aaron Baalbergen||Configuration systems and methods for utilizing location information to configure devices in application systems|
|US20090316703 *||May 21, 2009||Dec 24, 2009||Hong Fu Jin Precision Industry (Shenzhen) Co., Ltd||Modem system and method|
|US20100017874 *||Jul 16, 2008||Jan 21, 2010||International Business Machines Corporation||Method and system for location-aware authorization|
|US20100020685 *||Oct 15, 2009||Jan 28, 2010||Nomadix, Inc.||Systems and methods for dynamic bandwidth management on a per subscriber basis in a communications network|
|US20100208743 *||Apr 30, 2010||Aug 19, 2010||Nomadix, Inc.|
|US20110002240 *||Jun 30, 2010||Jan 6, 2011||Amir Harel||System and method for creating a transitive optimzed flow path|
|US20110030037 *||Aug 3, 2009||Feb 3, 2011||Vadim Olshansky||Zone migration in network access|
|US20110035420 *||Oct 18, 2010||Feb 10, 2011||Farshid Alizadeh-Shabdiz||Location Beacon Database|
|US20110058549 *||Sep 7, 2010||Mar 10, 2011||Amir Harel||Method and system for layer 2 manipulator and forwarder|
|US20110093443 *||Oct 19, 2010||Apr 21, 2011||Farshid Alizadeh-Shabdiz||Access Point Database|
|US20110093549 *||Dec 22, 2010||Apr 21, 2011||Deshpande Nikhil M||Personal assistance service with instant messaging|
|US20110093550 *||Dec 22, 2010||Apr 21, 2011||Deshpande Nikhil M||Personal assistance service with instant messaging|
|US20110093551 *||Dec 22, 2010||Apr 21, 2011||Deshpande Nikhil M||Personal assistance service with instant messaging|
|US20110199932 *||Apr 26, 2011||Aug 18, 2011||Nomadix, Inc.|
|US20110225630 *||May 19, 2011||Sep 15, 2011||Research In Motion Limited||Wireless router system and method|
|US20130297723 *||May 2, 2012||Nov 7, 2013||Guest Tek Interactive Entertainment Ltd.||Automatic client device location detection within hospitality establishment|
|US20140325039 *||Jul 14, 2014||Oct 30, 2014||Cisco Technology, Inc.||Deterministic session load-balancing and redundancy of access servers in a computer network|
|CN101610250B||Jun 19, 2008||Sep 19, 2012||鸿富锦精密工业（深圳）有限公司||Modem and data transmission method thereof|
|Cooperative Classification||H04L67/18, H04L67/04|
|European Classification||H04L29/08N3, H04L29/08N17|
|Jan 12, 2001||AS||Assignment|
Owner name: NOMADIX, INC., CALIFORNIA
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SHORT, JOEL E.;LOGAN, MARK F.;PAGAN, FLORENCE C.I.;REEL/FRAME:011432/0965;SIGNING DATES FROM 20001205 TO 20001212
|Dec 22, 2009||CC||Certificate of correction|
|Aug 26, 2010||FPAY||Fee payment|
Year of fee payment: 4
|Aug 27, 2014||FPAY||Fee payment|
Year of fee payment: 8
|Sep 30, 2015||AS||Assignment|
Owner name: NTT DOCOMO, INC., JAPAN
Free format text: SECURITY INTEREST;ASSIGNOR:NOMADIX, INC.;REEL/FRAME:036721/0341
Effective date: 20150929